Premium

AWS Certified Solutions Architect – Associate Questions and Answers (Dumps and Practice Questions)



Question : You are the Root owner of the AWS accounts, and recently a new AWS administrator joined your team and you are worried about the protecting
this new user credentials. How would make sure, it is protected?
A. Enable MFA for this Admin Account
B. You can limit that account should not be accessed outside of the city
C. You will be creating a Password policy, like 30days password change and what all characters are allowed etc.
D. Restrict the IP addresses from where this account can be logged in.

: You are the Root owner of the AWS accounts, and recently a new AWS administrator joined your team and you are worried about the protecting
1. A,B,C
2. B,C,D
 3. Access Mostly Uused Products by 50000+ Subscribers
4. A,B,D

Correct Answer : Get Lastest Questions and Answer :
Explanation: You don’t have such thing in AWS that, login can be restricted based on area. You can restrict login based on IP addresses,
enable MFA and password policy should always be there.




Question : Which of below mentioned metrics cannot have a CloudWatch Alarm?

: Which of below mentioned metrics cannot have a CloudWatch Alarm?
1. RRS lost object
2. EC2 instance StatusCheckFailed
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Auto Scaling group CPU utilization

Ans : 1
Exp :

Amazon CloudWatch provides monitoring for AWS cloud resources and the applications customers run on AWS. Developers and system administrators can
use it
to collect and track metrics, gain insight, and react immediately to keep their applications and businesses running smoothly. Amazon CloudWatch
monitors
AWS resources such as Amazon EC2 and Amazon RDS DB instances, and can also monitor custom metrics generated by a customers applications and services.
With Amazon CloudWatch, you gain system-wide visibility into resource utilization, application performance, and operational health.

Amazon CloudWatch provides a reliable, scalable, and flexible monitoring solution that you can start using within minutes. You no longer need to set up,
manage, or scale your own monitoring systems and infrastructure. Using Amazon CloudWatch, you can easily monitor as much or as little metric data as you
need. Amazon CloudWatch lets you programmatically retrieve your monitoring data, view graphs, and set alarms to help you troubleshoot, spot trends, and
take
automated action based on the state of your cloud environment.

The user can set an alarm on all the CloudWatch metrics, such as the EC2 CPU utilization or the Auto Scaling group metrics.
CloudWatch does not support AWS S3. Thus. it cannot set an alarm on the RRS lost objects.





Question : . You have been asked by the Chief architect to implement tighter security control on each EC instance, because each EC instance does
very critical data processing and if it leaked, it can have very huge damage. He suggested it is optional, if you want to keep any security on subnet
level. Which of the following you will implement in this case mandatorily?


: Which of below mentioned metrics cannot have a CloudWatch Alarm?
1. You will implement NACL

2. You will have setup Security Group

 3. Access Mostly Uused Products by 50000+ Subscribers

4. You will create a custom firewall for each EC2 instance and define the strict rule.


Correct Answer : Get Lastest Questions and Answer :
Explanation: You will implement Security Group , because they are on instance level and NACL are subnet level, you have asked to have this
is as an optional configuration.
Remember: NACL are subnet level and Security Group are on instance level.





Question : You are working with a very big IT consultancy company and you have been asked to create as max as possible IP address in a virtual
network, it can accommodate. How many, distinct ip addresses will be supported by biggest VPC in AWS.


: You are working with a very big IT consultancy company and you have been asked to create as max as possible IP address in a virtual
1. 65531

2. 32763

 3. Access Mostly Uused Products by 50000+ Subscribers

4. 100


Correct Answer : Get Lastest Questions and Answer :
Explanation: You can have biggest VPC with 2 power (32-16) distinct ip addresses. Hence total will be 65565. Usable for you will be 65531,
because 5 ip addresses are reserved by AWS.


Related Questions

Question :
An EC2 instance has basic monitoring enabled on it. Which aggregate statistics are available for the instance?

 :
1. Basic
2. Average
3. Access Mostly Uused Products by 50000+ Subscribers
4. Minimum


Question :
In regards to VPC, what is the default maximum number of BGP Advertised Routes allowed per VPN Connection?

 :
1. 100
2. 15
 3. Access Mostly Uused Products by 50000+ Subscribers
4. 10


Question :
Is it possible to control the privileges of the AWS root account credentials for day-to-day interaction with AWS ?
 :
1. No, instead you should use AWS Security Token Service
2. Yes, you can control the privileges of any user
 3. Access Mostly Uused Products by 50000+ Subscribers
4. No, rather you should use AWS Identity and Access Management (IAM) user credentials


Question :
Does CloudFront support encrypted data streaming in RTMP distribution?
 :
1. No, it doesnt support
2. Yes, it supports RTMPTE Adobe encrypted tunneled over HTTP
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Yes, it supports RTMPE Adobe encrypted


Question : You have been asked to create VPC for your company. The VPC must support both Internet-facing web applications (ie they need to be publicly
accessible) and internal
private applications (i.e. they are not publicly accessible and can be accessed only over VPN). Both the internet-facing and private applications must be
able to leverage at least
three Availability Zones for high availability. At a minimum, how many subnets must you create within your VPC to achieve this?
 : You have been asked to create VPC for your company. The VPC must support both Internet-facing web applications (ie they need to be publicly
1. 2
2. 3
 3. Access Mostly Uused Products by 50000+ Subscribers
4. 6


Question : You have a VPC that is built in a single region and it currently makes use of availability zones. In this VPC you have deployed a very
important two-tier web application.
Your web application uses using Elastic Load Balancing and Auto Scaling. The application depends on synchronous replication (which requires a very low
latency connectivity) to the
database. The application needs to remain fully available even if one application Availability Zone goes down, and Auto Scaling cannot launch new instances
in the remaining
Availability Zones. How can the current architecture be enhanced to ensure this?
 : You have a VPC that is built in a single region and it currently makes use of availability zones. In this VPC you have deployed a very
1. Deploy your web application into three AZ's. Set your Auto Scaling policy minimum to handle 50 percent peak load per zone.
2. Deploy your web application in two regions using a round robin DNS and set your Auto Scaling minimums set for 100 percent peak load per region.
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Deploy your web application in to two regions using Weighted Round Robin DNS. Set your Auto Scaling policy minimums set for 50 percent peak
load per Region.